Merge pull request #644 from ClusterLabs/upgrade-tools

Upgrade tools

Author: digimer

Anvil/Tools.pm

@@ -1061,6 +1061,7 @@ sub _set_paths
 				'autoindex.conf'		=>	"/etc/httpd/conf.d/autoindex.conf", 
 				'cib.xml'			=>	"/var/lib/pacemaker/cib/cib.xml",
 				'corosync.conf'			=>	"/etc/corosync/corosync.conf",
+				'corosync-authkey'		=>	"/etc/corosync/authkey",
 				'dhcpd.conf'			=>	"/etc/dhcp/dhcpd.conf",
 				'dnf.conf'			=>	"/etc/dnf/dnf.conf",
 				'drbd-proxy.license'		=>	"/etc/drbd-proxy.license",

Anvil/Tools/Database.pm

@@ -3687,7 +3687,7 @@ WHERE
 ;";
 	$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { query => $query }});
 	my $results = $anvil->Database->query({query => $query, source => $THIS_FILE, line => __LINE__});
-	my $count   = @{$results};
+	my $count   = ref($results) eq "ARRAY" ? @{$results} : 0;
 	$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { 
 		results => $results, 
 		count   => $count, 

Anvil/Tools/Network.pm

@@ -3237,6 +3237,8 @@ This method loads and stores the same data as the C<< get_ips >> method, but doe
 
 C<< Note >>: IP addresses that have been deleted will be marked so by C<< ip >> being set to C<< DELETED >>.
 
+C<< Note >>: If there network has a device name, from network manager, that is the name used for C<< <iface_name> >>. 
+
 The loaded data will be stored as:
 
 * C<< network::<host>::interface::<iface_name>::ip >>              - If an IP address is set
@@ -3343,6 +3345,7 @@ AND
 		my $bridge_name            = "";
 		my $bond_name              = "";
 		my $interface_name         = "";
+		my $interface_device       = "";
 		my $interface_mac          = "";
 		my $network_interface_uuid = "";
 		if ($ip_address_on_type eq "interface")
@@ -3381,11 +3384,24 @@ AND
 
 			if ($active_interface)
 			{
-				my $query = "SELECT network_interface_uuid FROM network_interfaces WHERE network_interface_host_uuid = ".$anvil->Database->quote($host_uuid)." AND network_interface_name = ".$anvil->Database->quote($active_interface).";";
+				my $query = "
+SELECT 
+    network_interface_uuid
+FROM 
+    network_interfaces 
+WHERE 
+    network_interface_host_uuid  = ".$anvil->Database->quote($host_uuid)." 
+AND 
+    (
+        network_interface_name   = ".$anvil->Database->quote($active_interface)."
+    OR 
+        network_interface_device = ".$anvil->Database->quote($active_interface)."
+    )
+;";
 				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { query => $query }});
 
 				$network_interface_uuid = $anvil->Database->query({query => $query, source => $THIS_FILE, line => __LINE__})->[0]->[0];
-				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { active_interface => $active_interface }});
+				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { network_interface_uuid => $network_interface_uuid }});
 			}
 		}
 
@@ -3407,6 +3423,7 @@ AND
 SELECT 
     network_interface_uuid, 
     network_interface_name, 
+    network_interface_device, 
     network_interface_mac_address, 
     network_interface_speed, 
     network_interface_mtu, 
@@ -3432,31 +3449,44 @@ AND
 			}});
 			next if not $count;
 
-			$interface_name = $results->[0]->[1];
-			$interface_mac  = $results->[0]->[2];
+			$interface_name   = $results->[0]->[1];
+			$interface_device = $results->[0]->[2];
+			$interface_mac    = $results->[0]->[3];
 			$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { 
-				interface_name => $interface_name, 
-				interface_mac  => $interface_mac, 
+				interface_name   => $interface_name, 
+				interface_device => $interface_device, 
+				interface_mac    => $interface_mac, 
 			}});
 
+			# If we've got an interface device, use that for the hash.
+			if ($interface_device)
+			{
+				$interface_name = $interface_device;
+				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { interface_name => $interface_name }});
+			}
+			
 			$anvil->data->{network}{$host}{interface}{$interface_name}{network_interface_uuid} =         $results->[0]->[0];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{interface_name}         =         $results->[0]->[1];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{interface_device}       =         $results->[0]->[2];
 			$anvil->data->{network}{$host}{interface}{$interface_name}{mac_address}            =         $interface_mac;
 			$anvil->data->{network}{$host}{interface}{$interface_name}{ip}                     =         $ip_address_address;
 			$anvil->data->{network}{$host}{interface}{$interface_name}{subnet_mask}            =         $ip_address_subnet_mask;
 			$anvil->data->{network}{$host}{interface}{$interface_name}{default_gateway}        =         $ip_address_default_gateway;
 			$anvil->data->{network}{$host}{interface}{$interface_name}{gateway}                =         $ip_address_gateway;
 			$anvil->data->{network}{$host}{interface}{$interface_name}{dns}                    =         $ip_address_dns;
 			$anvil->data->{network}{$host}{interface}{$interface_name}{type}                   =         "interface";
-			$anvil->data->{network}{$host}{interface}{$interface_name}{speed}                  =         $results->[0]->[3];
-			$anvil->data->{network}{$host}{interface}{$interface_name}{mtu}                    =         $results->[0]->[4];
-			$anvil->data->{network}{$host}{interface}{$interface_name}{link_state}             =         $results->[0]->[5];
-			$anvil->data->{network}{$host}{interface}{$interface_name}{operational}            =         $results->[0]->[6];
-			$anvil->data->{network}{$host}{interface}{$interface_name}{duplex}                 =         $results->[0]->[7];
-			$anvil->data->{network}{$host}{interface}{$interface_name}{medium}                 =         $results->[0]->[8];
-			$anvil->data->{network}{$host}{interface}{$interface_name}{bond_uuid}              = defined $results->[0]->[9]  ? $results->[0]->[9]  : "";
-			$anvil->data->{network}{$host}{interface}{$interface_name}{bridge_uuid}            = defined $results->[0]->[10] ? $results->[0]->[10] : "";
+			$anvil->data->{network}{$host}{interface}{$interface_name}{speed}                  =         $results->[0]->[4];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{mtu}                    =         $results->[0]->[5];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{link_state}             =         $results->[0]->[6];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{operational}            =         $results->[0]->[7];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{duplex}                 =         $results->[0]->[8];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{medium}                 =         $results->[0]->[9];
+			$anvil->data->{network}{$host}{interface}{$interface_name}{bond_uuid}              = defined $results->[0]->[10] ? $results->[0]->[10] : "";
+			$anvil->data->{network}{$host}{interface}{$interface_name}{bridge_uuid}            = defined $results->[0]->[11] ? $results->[0]->[11] : "";
 			$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { 
 				"network::${host}::interface::${interface_name}::network_interface_uuid" => $anvil->data->{network}{$host}{interface}{$interface_name}{network_interface_uuid}, 
+				"network::${host}::interface::${interface_name}::interface_name"         => $anvil->data->{network}{$host}{interface}{$interface_name}{interface_name}, 
+				"network::${host}::interface::${interface_name}::interface_device"       => $anvil->data->{network}{$host}{interface}{$interface_name}{interface_device}, 
 				"network::${host}::interface::${interface_name}::mac_address"            => $anvil->data->{network}{$host}{interface}{$interface_name}{mac_address}, 
 				"network::${host}::interface::${interface_name}::ip"                     => $anvil->data->{network}{$host}{interface}{$interface_name}{ip}, 
 				"network::${host}::interface::${interface_name}::subnet_mask"            => $anvil->data->{network}{$host}{interface}{$interface_name}{subnet_mask}, 
@@ -3578,7 +3608,6 @@ AND
 }
 
 
-
 =head2 manage_firewall
 
 B<< NOTE >>: So far, only C<< check >> is implemented.

Anvil/Tools/Remote.pm

@@ -130,7 +130,7 @@ sub add_target_to_known_hosts
 	}});
 
 	# Get the local user's home
-	my $users_home = $anvil->Get->users_home({debug => ($debug + 1), user => $user});
+	my $users_home = $anvil->Get->users_home({debug => 3, user => $user});
 	$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { users_home => $users_home }});
 	if (not $users_home)
 	{
@@ -148,7 +148,7 @@ sub add_target_to_known_hosts
 	{
 		# Yup, see if the target is there already,
 		$known_machine = $anvil->Remote->_check_known_hosts_for_target({
-			debug           => ($debug + 1), 
+			debug           => $debug, 
 			target          => $target, 
 			port            => $port, 
 			known_hosts     => $known_hosts, 
@@ -163,7 +163,7 @@ sub add_target_to_known_hosts
 	{
 		# We don't know about this machine yet, so scan it.
 		my $added = $anvil->Remote->_call_ssh_keyscan({
-			debug       => ($debug + 1), 
+			debug       => $debug, 
 			target      => $target, 
 			port        => $port, 
 			user        => $user, 
@@ -172,7 +172,6 @@ sub add_target_to_known_hosts
 		if (not $added)
 		{
 			# Failed to add. :(
-			
 			my $say_user = $user;
 			if (($say_user =~ /^\d+$/) && (getpwuid($user)))
 			{
@@ -1219,6 +1218,13 @@ sub _check_known_hosts_for_target
 		return($known_machine)
 	}
 
+	### NOTE: This is called by ocf:alteeve:server, so there might not be a database available.
+	# Make sure we've loaded hosts.
+	if (($anvil->data->{sys}{database}{read_uuid}) && (not exists $anvil->data->{hosts}{host_uuid}))
+	{
+		$anvil->Database->get_hosts({debug => $debug});
+	}
+	
 	# read it in and search.
 	my $body = $anvil->Storage->read_file({debug => $debug, file => $known_hosts});
 	$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { body => $body }});
@@ -1227,12 +1233,84 @@ sub _check_known_hosts_for_target
 		$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { line => $line }});
 
 		# This is wider scope now to catch hosts using other hashes than 'ssh-rsa'
-		if (($line =~ /$target /) or ($line =~ /\[$target\]:$port /))
+		if (($line =~ /$target (.*)$/) or ($line =~ /\[$target\]:$port (.*)$/))
 		{
 			# We already know this machine (or rather, we already have a fingerprint for
 			# this machine).
-			$known_machine = 1;
-			$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { known_machine => $known_machine }});
+			my $current_key   = $anvil->Words->clean_spaces({string => $1});
+			my $is_host_name  = $anvil->Validate->host_name({debug => 3, name => $target});
+			my $is_ip         = $anvil->Validate->ipv4({debug => 3, ip => $target});
+			   $known_machine = 1;
+			$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { 
+				current_key   => $current_key, 
+				is_host_name  => $is_host_name, 
+				is_ip         => $is_ip, 
+				known_machine => $known_machine,
+			}});
+			
+			# If we're already planning to delete 
+			next if $delete_if_found;
+			
+			# If we don't have any DBs to read from, we're also done.
+			$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { 
+				'sys::database::read_uuid' => $anvil->data->{sys}{database}{read_uuid},
+			}});
+			next if not $anvil->data->{sys}{database}{read_uuid};
+			
+			my $target_host_uuid = "";
+			my $target_host_name = "";
+			if ($is_ip)
+			{
+				($target_host_uuid, $target_host_name) = $anvil->Get->host_from_ip_address({debug => 2, ip_address => $target});
+				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { 
+					target_host_uuid => $target_host_uuid, 
+					target_host_name => $target_host_name,
+				}});
+			}
+			elsif ($is_host_name)
+			{
+				$target_host_name = $target;
+				$target_host_uuid = $anvil->Get->host_uuid_from_name({debug => 3, host_name => $target});
+				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { 
+					target_host_uuid => $target_host_uuid, 
+					target_host_name => $target_host_name,
+				}});
+			}
+			
+			if ($target_host_uuid)
+			{
+				# If we have a host_key and it doesn't match the one we just read, delete it.
+				my $host_key = $anvil->Words->clean_spaces({string => $anvil->data->{hosts}{host_uuid}{$target_host_uuid}{host_key}});
+				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { 
+					's1:host_key'    => $host_key,
+					's2:current_key' => $current_key, 
+				}});
+				
+				my ($current_key_type, $current_key_string) =  ($current_key =~ /(.*?)\s+(.*)$/);
+				my ($host_key_type, $host_key_string)       =  ($host_key =~ /(.*?)\s+(.*)$/);
+				   $host_key_string                         =~ s/\s.*$//;
+				$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { 
+					's1:current_key_type'   => $current_key_type,
+					's2:host_key_type'      => $host_key_type, 
+					's3:current_key_string' => $current_key_string, 
+					's4:host_key_string'    => $host_key_string, 
+				}});
+				
+				# If the key type is the same, but the string is not, delete the old key.
+				if (($current_key_type eq $host_key_type) && ($current_key_string ne $host_key_string))
+				{
+					# It's changed, clear the old one.
+					$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, key => "log_0851", variables => { 
+						known_hosts => $known_hosts, 
+						target      => $target, 
+						key_type    => $current_key_type, 
+						old_key     => $current_key_string,
+						new_key     => $host_key_string,
+					}});
+					$delete_if_found = 1;
+					$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, secure => 0, list => { delete_if_found => $delete_if_found }});
+				}
+			}
 		}
 	}
 

Anvil/Tools/Validate.pm

@@ -526,7 +526,6 @@ sub ip
 
 	my $ip = defined $parameter->{ip} ? $parameter->{ip} : "";
 	$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => $debug, list => { ip => $ip }});
-	
 
 	my $ipv4 =             $anvil->Validate->ipv4({ip => $ip, debug => $debug});
 	my $ipv6 = not $ipv4 ? $anvil->Validate->ipv6({ip => $ip, debug => $debug}) : 0;

man/anvil-join-anvil.8

@@ -1,6 +1,6 @@
 .\" Manpage for the Anvil! node assembly tool
 .\" Contact [email protected] to report issues, concerns or suggestions.
-.TH anvil-join-anvil "8" "August 10 2023" "Anvil! Intelligent Availability™ Platform"
+.TH anvil-join-anvil "8" "April 11 2024" "Anvil! Intelligent Availability™ Platform"
 .SH NAME
 anvil-join-anvil \- This tool assembles two subnodes into a node. 
 .SH SYNOPSIS
@@ -9,10 +9,6 @@ anvil-join-anvil \- This tool assembles two subnodes into a node.
 .SH DESCRIPTION
 This program takes two subnodes and merges them into an Anvil! node. This can be two new subnodes, or an existing subnode with a replacement subnode after a subnode failure.
 .TP
-.B Note:
-.TP
-As if this time, this tool only runs from a job registered in the database. As such, the job must be recorded using the Striker web interface
-.TP
 .SH OPTIONS
 .TP
 \-?, \-h, \fB\-\-help\fR
@@ -25,9 +21,25 @@ When logging, record sensitive data, like passwords.
 Set the log level to 1, 2 or 3 respectively. Be aware that level 3 generates a significant amount of log data.
 .SS "Commands:"
 .TP
+\fB\-\-as\-machine\fR <'node1' or 'node2'>
+.TP
+When using \fB\-\-rejoin\fR, this is the subnode role that this host will take. 
+.TP
+.B NOTE:
+.TP
+The previous subnode that held this position will be purged! All data associated with the previous subnode will be deleted from the Anvil! database.
+.TP
 \fB\-\-job\-uuid\fR
 .TP
 This is the job UUID that will be run. 
+.TP
+\fB\-\-manifest\fR <name or uuid>
+.TP
+If this is given, then this host will be joined to the manifest. This is required if \fB\-\-rejoin\fR is used.
+.TP
+\fB\-\-rejoin\fR
+.TP
+If this is set, the host will be (re)joined to an existing Anvil! node. This is used to bring this host into an Anvil! subnode, typically after a subnode failure / rebuild.
 .IP
 .SH AUTHOR
 Written by Madison Kelly, Alteeve staff and the Anvil! project contributors.

man/striker-purge-target.8

@@ -0,0 +1,35 @@
+.\" Manpage for the Striker purge tool
+.\" Contact [email protected] to report issues, concerns or suggestions.
+.TH striker-purge-target "8" "April 11 2024" "Anvil! Intelligent Availability™ Platform"
+.SH NAME
+striker-purge-target \- This tool purges the target from all Anvil! databases.
+.SH SYNOPSIS
+.B striker-purge-target 
+\fI\,<command> \/\fR[\fI\,options\/\fR]
+.SH DESCRIPTION
+This tool can be used to purge a host or an Anvil! node (and both subnodes) from the Anvil! database.
+.TP
+.SH OPTIONS
+.TP
+\-?, \-h, \fB\-\-help\fR
+Show this man page.
+.TP
+\fB\-\-log-secure\fR
+When logging, record sensitive data, like passwords.
+.TP
+\-v, \-vv, \-vvv
+Set the log level to 1, 2 or 3 respectively. Be aware that level 3 generates a significant amount of log data.
+.SS "Commands:"
+.TP
+\fB\-\-anvil\fR
+.TP
+This purges the Anvil! node (and both subnodes) from the Anvil! database.
+.TP
+\fB\-\-host\fR <host name or UUID>
+.TP
+This purges a specific host from the Anvil! databases.
+.IP
+.SH AUTHOR
+Written by Madison Kelly, Alteeve staff and the Anvil! project contributors.
+.SH "REPORTING BUGS"
+Report bugs to [email protected]

scancore-agents/scan-server/scan-server

@@ -115,6 +115,24 @@ sub connect_to_virsh
 		target => $target,
 	});
 
+	# Also convert the target to an IP, if needed, and make sure that's added also.
+	my $is_ip    = $anvil->Validate->ipv4({debug => 2, ip => $target});
+	my $check_ip = 0;
+	$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => 2, list => { is_ip => $is_ip }});
+	if (not $is_ip)
+	{
+		$check_ip = $anvil->Convert->host_name_to_ip({debug => 2, host_name => $target});
+		$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => 2, list => { check_ip => $check_ip }});
+		
+		if ($check_ip)
+		{
+			$anvil->Remote->test_access({
+				debug  => 2,
+				target => $check_ip,
+			});
+		}
+	}
+	
 	my $record_locator                           = "scan_server::qemu::".$target."::no_access";
 	my $is_local                                 = $anvil->Network->is_local({host => $target });
 	   $anvil->data->{qemu}{$target}{connection} = "";